Skip to content

Our Commitment to Compliance

At Truly, we prioritize the trust and safety of our users by adhering to the highest standards of regulatory compliance. Our dedication ensures that our platform remains secure, transparent, and aligned with global best practices. Below is an overview of our current compliance status:

1. Digital Services Act (DSA) Compliance

We are proud to announce that Truly is fully compliant with the European Union's Digital Services Act (DSA). The DSA establishes comprehensive regulations for digital services operating within the EU, aiming to create a safer and more transparent online environment by holding platforms accountable for the content they host and the services they provide.

Our compliance with the DSA includes:

  • User Empowerment: We've implemented mechanisms that allow users to flag and report illegal content easily, empowering our community to actively participate in maintaining a safe digital environment.

  • Transparency Reports: We are committed to publishing regular transparency reports detailing our content moderation actions, ensuring that our processes remain open and accountable to our users.

  • Enhanced Protection Measures: We've adopted additional safeguards to protect minors and prevent the dissemination of illegal goods, services, or content on our platform.

By aligning with the DSA's rigorous standards, we've enhanced our platform's transparency and accountability. This compliance not only fortifies user trust but also positions Truly as a leader in upholding the highest standards in the digital service landscape.

2. General Data Protection Regulation (GDPR) Compliance

Truly is fully compliant with the European Union's General Data Protection Regulation (GDPR), which is designed to protect the personal data and privacy of EU citizens. Our GDPR compliance efforts encompass:

  • Data Protection Policies: We've established comprehensive data protection policies that outline our commitment to safeguarding user information.

  • User Rights: We respect and facilitate user rights under the GDPR, including the rights to access, rectify, and erase personal data.

  • Data Breach Response: Our incident response plan ensures that any data breaches are promptly addressed, and affected users are notified in accordance with GDPR requirements.

By adhering to GDPR standards, we demonstrate our commitment to protecting user privacy and maintaining the confidentiality of personal data.

3. Pursuing SOC 2 Type 2 Certification with Deloitte

We are actively working towards obtaining the Service Organization Control (SOC) 2 Type 2 certification in collaboration with Deloitte. This certification focuses on the operational effectiveness of our controls over a specified period, particularly concerning security, availability, processing integrity, confidentiality, and privacy.

Achieving SOC 2 Type 2 certification involves:

  • Comprehensive Evaluation: Deloitte will conduct an in-depth assessment of our systems and processes to ensure they meet the stringent criteria set forth by the American Institute of Certified Public Accountants (AICPA).

  • Continuous Monitoring: We are committed to ongoing monitoring and improvement of our controls to maintain compliance and address emerging security challenges.

Pursuing this certification underscores our dedication to operational excellence and the highest standards of data security.

Future Compliance Initiatives

We are actively working towards compliance with other significant regulations and standards to further enhance our platform's integrity and user trust. Updates on these initiatives will be provided as we achieve new compliance milestones.

Contact Us

For any questions or concerns regarding our compliance efforts, please contact our compliance team at privacy@truly.ws 

Your trust is our priority, and we remain committed to maintaining the highest standards of compliance and user safety.